Red Hat Product Errata RHSA-2025:9997 - Security Advisory
Issued:
2025-07-01
Updated:
2025-07-01

RHSA-2025:9997 - Security Advisory

Synopsis

Moderate: mod_proxy_cluster security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for mod_proxy_cluster is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The mod_proxy_cluster module is a plugin for the Apache HTTP Server that provides load-balancer functionality.

Security Fix(es):

  • mod_proxy_cluster: mod_proxy_cluster unauthorized MCMP requests (CVE-2024-10306)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.4 x86_64
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x
  • Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 x86_64
  • Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4 aarch64
  • Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 ppc64le
  • Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4 s390x

Fixes

  • BZ - 2321302 - CVE-2024-10306 mod_proxy_cluster: mod_proxy_cluster unauthorized MCMP requests
  • RHEL-95378 - Rebase mod_proxy_cluster to upstream 1.3.22.Final release

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
x86_64
mod_proxy_cluster-1.3.22-1.el9_4.1.x86_64.rpm SHA-256: 2771c1266605e6f3568a1fa70f99cafa3170a6cae6411631e3e483a42ca8aa6f
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.x86_64.rpm SHA-256: 95f10036b1f8ee0d2fde427b5bd9c11251c8dd1f450f7ffaaed8c2c414673173
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.x86_64.rpm SHA-256: d351730815394827206d2d1932d75c7a8cc7c75376c9f54b9d178080eb8c36dc

Red Hat Enterprise Linux Server - AUS 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
x86_64
mod_proxy_cluster-1.3.22-1.el9_4.1.x86_64.rpm SHA-256: 2771c1266605e6f3568a1fa70f99cafa3170a6cae6411631e3e483a42ca8aa6f
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.x86_64.rpm SHA-256: 95f10036b1f8ee0d2fde427b5bd9c11251c8dd1f450f7ffaaed8c2c414673173
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.x86_64.rpm SHA-256: d351730815394827206d2d1932d75c7a8cc7c75376c9f54b9d178080eb8c36dc

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
s390x
mod_proxy_cluster-1.3.22-1.el9_4.1.s390x.rpm SHA-256: aeb1d94314cab0db0466942032674bc7fb80beac9eb9dac22b1384503cc6f7e4
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.s390x.rpm SHA-256: 4b75ef67fd7ab8d4453e377a441182a399059d8dcea077e82a9a647807baeb2c
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.s390x.rpm SHA-256: fde0481ff3182356222e1f46fafb4b9f437efa84ba06a2e57cb3825bf0d88a88

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
ppc64le
mod_proxy_cluster-1.3.22-1.el9_4.1.ppc64le.rpm SHA-256: 42c24bd6718f2bb8f4d3193c1d3510d30d8424476a67327d72f51c923ab5683e
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.ppc64le.rpm SHA-256: 7fd0f496c7c7da8f219d3f21f315b3129004562f38805306964dadd678a63623
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.ppc64le.rpm SHA-256: 62e304f211b307c3546399e9d01e5be36a8f6132100d10d55d7be917c1a52a36

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
aarch64
mod_proxy_cluster-1.3.22-1.el9_4.1.aarch64.rpm SHA-256: 9c18046fdff70471bd5aa83f6d8d8cc99c66e7d14de1a4e5fdc262ee689a94f7
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.aarch64.rpm SHA-256: ea9f688e05fa122ad396bc0b9c229f306130125facd2268ea9673fcaef22109f
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.aarch64.rpm SHA-256: 8bc0d053ed08f97ad70a511a5690dc0f0490f6f3e97049796c17e48792145cf2

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
ppc64le
mod_proxy_cluster-1.3.22-1.el9_4.1.ppc64le.rpm SHA-256: 42c24bd6718f2bb8f4d3193c1d3510d30d8424476a67327d72f51c923ab5683e
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.ppc64le.rpm SHA-256: 7fd0f496c7c7da8f219d3f21f315b3129004562f38805306964dadd678a63623
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.ppc64le.rpm SHA-256: 62e304f211b307c3546399e9d01e5be36a8f6132100d10d55d7be917c1a52a36

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
x86_64
mod_proxy_cluster-1.3.22-1.el9_4.1.x86_64.rpm SHA-256: 2771c1266605e6f3568a1fa70f99cafa3170a6cae6411631e3e483a42ca8aa6f
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.x86_64.rpm SHA-256: 95f10036b1f8ee0d2fde427b5bd9c11251c8dd1f450f7ffaaed8c2c414673173
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.x86_64.rpm SHA-256: d351730815394827206d2d1932d75c7a8cc7c75376c9f54b9d178080eb8c36dc

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
aarch64
mod_proxy_cluster-1.3.22-1.el9_4.1.aarch64.rpm SHA-256: 9c18046fdff70471bd5aa83f6d8d8cc99c66e7d14de1a4e5fdc262ee689a94f7
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.aarch64.rpm SHA-256: ea9f688e05fa122ad396bc0b9c229f306130125facd2268ea9673fcaef22109f
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.aarch64.rpm SHA-256: 8bc0d053ed08f97ad70a511a5690dc0f0490f6f3e97049796c17e48792145cf2

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
s390x
mod_proxy_cluster-1.3.22-1.el9_4.1.s390x.rpm SHA-256: aeb1d94314cab0db0466942032674bc7fb80beac9eb9dac22b1384503cc6f7e4
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.s390x.rpm SHA-256: 4b75ef67fd7ab8d4453e377a441182a399059d8dcea077e82a9a647807baeb2c
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.s390x.rpm SHA-256: fde0481ff3182356222e1f46fafb4b9f437efa84ba06a2e57cb3825bf0d88a88

Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
x86_64
mod_proxy_cluster-1.3.22-1.el9_4.1.x86_64.rpm SHA-256: 2771c1266605e6f3568a1fa70f99cafa3170a6cae6411631e3e483a42ca8aa6f
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.x86_64.rpm SHA-256: 95f10036b1f8ee0d2fde427b5bd9c11251c8dd1f450f7ffaaed8c2c414673173
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.x86_64.rpm SHA-256: d351730815394827206d2d1932d75c7a8cc7c75376c9f54b9d178080eb8c36dc

Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
aarch64
mod_proxy_cluster-1.3.22-1.el9_4.1.aarch64.rpm SHA-256: 9c18046fdff70471bd5aa83f6d8d8cc99c66e7d14de1a4e5fdc262ee689a94f7
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.aarch64.rpm SHA-256: ea9f688e05fa122ad396bc0b9c229f306130125facd2268ea9673fcaef22109f
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.aarch64.rpm SHA-256: 8bc0d053ed08f97ad70a511a5690dc0f0490f6f3e97049796c17e48792145cf2

Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
ppc64le
mod_proxy_cluster-1.3.22-1.el9_4.1.ppc64le.rpm SHA-256: 42c24bd6718f2bb8f4d3193c1d3510d30d8424476a67327d72f51c923ab5683e
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.ppc64le.rpm SHA-256: 7fd0f496c7c7da8f219d3f21f315b3129004562f38805306964dadd678a63623
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.ppc64le.rpm SHA-256: 62e304f211b307c3546399e9d01e5be36a8f6132100d10d55d7be917c1a52a36

Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4

SRPM
mod_proxy_cluster-1.3.22-1.el9_4.1.src.rpm SHA-256: 70ae47cb8eb74c072be6ac568e86f56de87977408a91f13e4a189ef669a4b154
s390x
mod_proxy_cluster-1.3.22-1.el9_4.1.s390x.rpm SHA-256: aeb1d94314cab0db0466942032674bc7fb80beac9eb9dac22b1384503cc6f7e4
mod_proxy_cluster-debuginfo-1.3.22-1.el9_4.1.s390x.rpm SHA-256: 4b75ef67fd7ab8d4453e377a441182a399059d8dcea077e82a9a647807baeb2c
mod_proxy_cluster-debugsource-1.3.22-1.el9_4.1.s390x.rpm SHA-256: fde0481ff3182356222e1f46fafb4b9f437efa84ba06a2e57cb3825bf0d88a88

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.